{"id":"CVE-2025-2830","details":"By crafting a malformed file name for an attachment in a multipart message, an attacker can trick Thunderbird into including a directory listing of /tmp when the message is forwarded or edited as a new message. This vulnerability could allow attackers to disclose sensitive information from the victim's system. This vulnerability is not limited to Linux; similar behavior has been observed on Windows as well. This vulnerability affects Thunderbird \u003c 137.0.2 and Thunderbird \u003c 128.9.2.","modified":"2026-03-13T07:59:23.140363Z","published":"2025-04-15T15:16:08.957Z","related":["ALSA-2025:4229","ALSA-2025:4649","ALSA-2025:7435","ALSA-2025:7507","SUSE-SU-2025:1366-1","openSUSE-SU-2025:15000-1"],"references":[{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2025-26/"},{"type":"ADVISORY","url":"https://www.mozilla.org/security/advisories/mfsa2025-27/"},{"type":"REPORT","url":"https://bugzilla.mozilla.org/show_bug.cgi?id=1956379"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-2830.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"128.9.2"}]},{"events":[{"introduced":"129.0"},{"fixed":"137.0.2"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L"}]}